b'          INSPECTOR GENERAL\n\n                                                                                             IG-W-04\\\n\n\n\n\n          UNITED STATES INTERNATIONAL TRADE COMMISSION\n\n                                        WASHINGTON, D.C. 20436\n\nJuly 23,1999\n\nMEMORANDlJM\n\nTO:             Chairman\n                                                 c:~~~~\'     ~\nFROM:            Acting Inspector General\n                                                ~-"j ~/~\n                                                       ~:>\n\n\nSUBJECT:         inspection Report 05-99, Follow-up Review ofCommission \'s Preparation       1\'01\' the   Ycar 2000\n\nThe Office or Inspector General (OIG) conducted a follow-up inspection to Audit Report 03-99 Evaluation\nofthe Commission \'v Preparationfor the Year 2()()() (Y2K) to assess the lnteruational Trade Commission\'s\n(Commission) progress in Year Y2K activities.\n\nThe objectives of this inspection were to review the progress made by the Commission in implementing\nrecommendations and suggestions made in Report Number IG-03-99 and to identify areas wherein the\nCommission could be more proactive to minimize disruption because of the Y2K issues.\n\nOIG generally found that the Commission has made significant progress since the time or our audit. The\nDirector of Operations, as the Commission\'s Y2K official, was given the opportunity to comment on a draft\nofth is report and his comments were appropriately incorporated. Specific Iindings are contai ned in the report\nand our suggestions for continued progress arc found on page 6.\n\nAttachment\n\ncc:     Commission\n        Office Directors (Email distribution)\n\x0c            OFFICE OF INSPECTOR GENERAL\n\n\n\n\nFollow-up Review of Commission\'s Preparation for the Year 2000\n\n\n\n\n                  Inspection Report IG-05-99\n\n\n\n\n                                                Date: July 23, 1999\n\x0c                                                                             Inspection Report IG-05-99\n\n\n\n\nI. INTRODllCTION\n\nThe United States International Trade Commission (Commission) provides advice to the President and\nCongress on tariff and trade matters, conducts investigations relating to the impact of imports on domestic\nindustries, and contributes to the development of U.S. trade policy. The Commission has approximately 388\nemployees and a fiscal year (FY) 1999 budget of approximately $45 million.\n\nSince 1988, the Commission has automated essential agency functions and implemented an enterprise-wide\nlocal area network. Consequently,the Commission reiies upon several information systems and its underlying\nenterprise network to perform its mission. The Commission depends on information systems developed by\nother Federal agencies to perform its financial responsibilities, pay its employees, and perform its personnel\nmanagement functions The Commission uses information-gathering systems from commercial organizations\nfor news and legal research. The Commission uses components that contain embedded electronics. The\nelectronics are found in the building infrastructure, telephone and fax systems, and in the audio-visual systems\nused in the Commission\'s hearing rooms.\n\nAt 12:01 a.m. on January 1,2000, many computer systems, electronic devices and components that contain\nembedded electronics could malfunction or produce incorrect information simply because the date has\nchanged. The year 2000 (Y2K) problem is rooted in the way dates are recorded and computed in many\ncomputer systems and other electronic components. For the past few decades, systems have typically used\ntwo digits to represent the year, such as "97" representing 1997. With this two-digit format, the year 2000\nis indistinguishable from 1900, the year 200 I from 190I, and so on. As a result ofthis ambiguity, electronic\ncomponents and computer hardware, operating system software, application software, application programs,\nand data that use dates to perform calculations, comparisons, or sorting may fail or generate incorrect results.\n\nOn January 1,2000, the ability of the Commission to accomplish its mission without disruption is at risk\nunless the information systems and components on which the Commission depends are Y2K compliant.\nMinimizing the impact of the Y2K problem on the Commission requires an organized managerial and\ntechnological effort. Otherwise, the Commission may have to perform its work using manual methods,\nprocesses, and procedures.\n\n\n                                                       1\n\x0c                                                                           Inspection Report IG-05-99\n\nII. BACKGROUND\n\nThe Office ofInspector General (OIG) initially audited the Commission\'s Y2K activities in the winter of 1998\nand submitted Evaluation ofthe ( \'ommission \'s Preparationfor the Year 2000, Report Number IG-03-99 in\nFebruary 1999. That report found that the extent of the Y2K problem on Commission operations was not\ndocumented or well understood and concluded that the Commission will likely experience some disruption\nbecause of the Y2K problem The report recommended that the Chairman appoint a single Y2K official to\nmanage the Commission\'s Y2K activities. The report further recommended that the Y2K official:\n\n        -- Ensure that all systems susceptible to Y2K problems have been identified;\n\n        -- Assemble an integrated project team consisting ofa representative for each mission-criticalsystem;\n\n           Develop a Y2K policy establishing the Commission\'s acceptable level of risk;\n\n           Increase awareness of the Y2K problem among Commission employees, and\n\n           Develop and implement a Y2K action plan.\n\nThis Inspection conducted in late June 1999 is a follow-up review to assess the Commission\'s progress with\nregard to the earlier audit recommendations.\n\nIII. OBJECTIVES\n\nThe objectives ofthis Inspection were to:\n\n        -- review the progress made by the Commission in implementing recommendations and suggestions\n        made in Report Number IG-03-99, Evaluation ofthe ( \'ommission \'s l\'reparationfor the Year 2000;\n\n        -- identify areas wherein the Commission must be more proactive to minimize disruption because\n        of the Y2K problems.\n\nIV. METHODOLOGY\n\nBurke Consortium, Inc. (BCI) developed data-gathering templates for each recommendation and provided a\ncopy of these templates to Commission officials responsible tor each system. During the week of June 21,\n1999, BCI met with each responsible official to:\n\n           review the status of current remediation efforts;\n\n           identify the scope of work performed since the previous review;\n\n           identify the actions that remain to be completed; and\n\n           identify the timeliness of the schedules tor completion.\n\nIn addition, BCl conducted random spot checks of components used in the Commission to assess the degree\nofY2K compliance.\n\n                                                      2\n\x0c                                                                              Inspection Report IG-05-99\n\nv.   FINDINGS\n\nThe Commission has made significant progress since      the review conducted during the winter of 1998. The\nChairman designated the Director, Office of\nOperations as the Commission\'s Y2K official. The                             FINDINGS\nY2K official established a Y2K Committee to\nmonitor overall Y2K progress and provide bi-                -The Commission has made significant progress.\nweekly reports of progress to the Chairman. The\nY2K Committee completed a survey of each office             -The Commission has identified mission-critical\nthat identi tics the most important functions that          processes and associated information systems.\nneed to be protected from disruption due to Y2K\nproblems This survey identifies critical work               -The Commission has updated the inventory ofall\nproducts that each office will have to produce              information systems and has completed\nduring January 2000, and the Y2K-vulnerable                 remediation ofmany mission-critical components.\nsystems that are used to prepare the products.\nInformation gathered during this survey served as           -The Commission has completed an Action Plan\nthe basis from which the Y2K Committee identified           with a Master schedule of Y2K events.\nthe Commission\'s critical business processes and\nassociated information systems.          The Y2K            -The Commission has begun high-level\nCommittee used the results of this survey to identify       contingency planning for all mission-critical\nthe Commission\'s mission critical "fi rst tier" and         processes.\n"second tier" functions.\n\nThe Commission identified "first tier functions" as those that must operate during any potential disruption\nor the agency may face serious adverse consequences. The Commission\'s first tier functions are: ( I) building\nsecurity, (2) payroll, (3) remediation of Y2K problems, and (4) basic communications. The Commission\nidentified "second tier functions" as those that are crucial to the Commission\'s long-term operations, but\nduring January 2000, potentially could be postponed in the event ofa massive disruption. The Commission\'s\nsecond tier functions also include investigation and research activities that fulfill the agency\'s mission.\n\nThe Office oflnformation Services (OIS) completed an inventory of Commission software and hardware tor\nY2K review. The inventory listing reflects the remediation status of all systems and components. However,\na spot check revealed that some items which should be identified and tracked tor Y2K compliance were not\nincluded in the current inventory listing. The items have been added to the inventory. Procedures are now\nin place to ensure that system changes are Y2K compliant and added to the inventory upon installation.\n\nOIS has completed remediation on all 400-plus personal computers (PCS) and many mission-critical\ncomponents A random spot check of components noted as compliant on the inventory list revealed that all\nwere compliant per manufacturer recommendations. The Office of Publishing (PUB) has completed\nremediation on the entire publishing system.\n\nThe Commission provided a high-level Y2K Contingency Plan to OMB on June 15, 1999. Detailed\ncontingency planning for all first and second tier functions is scheduled to begin in July and be completed by\nSeptember. Detailed contingency plans will take into account three scenarios that correspond to major levels\nof possible disruption: (I) The agency has no power and/or water, thus precluding use of the building; (2)\nthe agency has power, water, and PCS, but no network, communications (telephones, facsimile, e-mail), or\nduplication capability (copiers, Docutech); and (3) the agency has power, PCS, copies, and the network\n(including internal e-mail), but no external communications (telephones, Internet, facsimile, external e-mail).\n\n                                                        3\n\x0c                                                                           Inspection Report IG-05-99\n\nFor tier one functions, the Y2K Committee has tasked Director of Administration, Director of OIS and\nDirector of External Relations to develop a contingency plan based on the scenarios listed above.\nAdditionally, for tier two functions, the five Business Continuity and Contingency Planning team leaders (the\nDirectoroflnvestigations, the Director ofUnfair Import Investigations,the Director oflndustries, the Director\no f Tar iff Affairs and Trade Agreements, and the Director of External Relations) have been tasked to develop\na contingency plan for each business operation.\n\nThe Action Plan finalized on July 2, 1999 identifies remaining work, assigns target dates for completion,\nassigns responsibility for completing remaining actions, and serves as the Commission\'s master schedule of\nY2K related actions. See Appendix A.\n\nFollow-up reviews of the Commission\'s mission-critical systems were conducted in order to determine\nprogress since the review conducted during the winter of 199R. Significant progress has been made on all\nmission-critical systems. A summary of eight systems is provided below.\n\n        I. Accounting/Payroll/Personnel\n\n       The Chief, Finance Division, Office of Finance and Budget(OFB) was contacted to obtain the status\n       of this system. Roles and responsibilities between the OFB, the Office of Personnel, and the OIS for\n       ensuring Y2K compliance of "non-standard" workstation hardware, software, and other components\n       have been defined. OFB will serve as liaison with other government agencies for all components that\n       are their responsibility as providers of accounting and payroll systems services to the Commission.\n       OIS will service and maintain "non-standard" components, such as older 80486-based machines, that\n       are the Commission\'s responsibility. OFB personnel are working with the providers of accounting,\n                                           payrolI,and personnel system services,the Department of Treasury\n                                           and the Department of Interior, to prepare contingency plans for\n  "OFB personnel are awaiting             essential functions in the event that accounting, payroll, or\n instructions from tile Director of        personnel systems fail. These plans will include procedures for\n Administration to begin developing        taxing and mailing information in the event that these systems are\n formal internal procedures for\n                                           not available. OFB personnel are awaiting instructions from the\n processing employee payroll. "\n                                           Director of Administration to begin developing formal internal\n                                           procedures for processing employee payroll. OFB personnel are\n                                           awaiting receipt of new Y2K compliant software for the\n       Government On-Line Accounting Link System, used to receive government bills, meet reporting\n        requirements, and perform other financial-related functions. OFB personnel anticipate receiving and\n        installing the new software by the end of July\n\n        2. ITC Net\n\n        The Chief, Information Systems Division and OIS Computer Specialist were contacted to obtain the\n        status of this system. Roles and responsibilities for Y2K compliance have been assigned. An\n        inventory of ITC Net hardware and software components has been prepared. Critical components\n        have been identified. Renovation has been performed on most critical components, with the\n        remainder scheduled to be completed by .J uly 30, 1999. Renovationof all components is scheduled\n        to be complete by September 30, 1999. There will not be a continuity plan developed specifically\n        for ITC Net. ITC Net services will be incorporated into continuity plans being prepared by the Tier\n        2 business process owners.\n\n\n                                                      4\n\x0c                                                                    Inspection Report IG-05-99\n\n\n3. PCS and COTS\n\nThe Chief, Information Systems Division and OIS Computer Specialist were contacted to obtain the\nstatus of this system. Significant progress has been made since the initial review. Roles and\nresponsibilities for Y2K compliance have been assigned. The OIS has validated the inventory ofPCS\nand commercial-off-the-shelf software (COTS), and has renovated all Dell PC hardware and ITC\nstandard software, with the exception of Microsoft Access 95, which will be upgraded to a Y2K\ncompliant version by August 30, 1999. The OIS does not plan to develop a continuity plan\nspecifically for PCS and COTS. Rather, PCS and COTS will be incorporated into continuity plans\nbeing prepared by the Tier 2 business process owners.\n\n4. Trade Database\n\nThe Director, OIS; Chief, Information Systems Division, OIS; Senior Database Manager, OIS; Trade\nand Tariff Information Manager, Office of Operation; and Database Manager, OIS were contacted\nto obtain the status of this system. Roles and responsibilities for Y2K compliance have been\nassigned. An inventory ofTrade Database components has been developed, but spot checks revealed\nthat it is not complete. OIS personnel have renovated the hardware and software identified in the\ninventory for Y2K compliance, with the exception of client software used for administration which\nis planned to be purchased. OIS personnel have reviewed all Trade Database source code to ensure\nit complies with the manufacturers\' specifications to ensure Y2K compliance. Notification to non-\nCommission users of the Trade Database wi II take place as part of the External Communications\nContinuity Plan planned for development by the Office of External Relations. The OIS does not plan\nto develop a continuity plan specifically for the Trade Database. Rather, the services provided by the\nTrade Database will be incorporated into continuity plans being prepared by the Tier 2 business\nprocess owners.\n\n5. Electronic Document Imaging System\n\nThe Chief, Information Systems Division, OIS and Computer Special ist, OIS were contacted to obtain\nthe status ofthis system. OIS personnel have developed an inventory ofelectronic document imaging\nsystem (EDIS) components, and identified the activities necessary to achieve Y2K compliance. Some\ncomponents can not be renovated to achieve Y2K compliance, although OIS personnel predict that\nthese components will not tail. Many of components for which Y2K remedies are available have not\nyet been renovated, but OIS personnel plan to start renovation soon and complete renovation by\nAugust I, 1999. OIS is in the process of contracting for a requirements study in order to accelerate\nplans for EDIS replacement, although a replacement system will not likely be in place prior to January\n2000. OIS does not plan to develop a continuity plan specifically for EDIS. Rather, the services\nprovided by EDIS will be incorporated into continuity plans being prepared by the Tier 2 business\nprocess owners.\n\n\n\n\n                                              5\n\x0c                                                                           Inspection Report 1(;-05-99\n\n\n        6. Electronic Publishing System\n\n        The Director, Office of Publishing and Information\n        Systems Specialist were contacted to obtain the status of "Key components of the electronic\n        this system. Significant progress has been made since     publishing system have been tested\n        the initial review. PUB has completed renovation of all   by the manufacturer or independent\n        hardware and software associated with the Electronic      organizations, and have been\n        Publishing System (EPS). Key components of the            certified to be Y2K compliant."\n        electronic publishing system have been tested by the\n        manufacturer or independent organizations, and have\n        been certified to be Y2K compliant PUB plans to develop a continuity plan specifically for the FPS.\n\n        7. PRISM\n\n        The Senior Contract Specialist, AD was contacted to obtain the status of this system. The Office of\n        the Director of Administration (AD) personnel have obtained a letter from the PRISM vendor\n        certifying the Y2K compliance of PRISM software. OIS personnel renovated PRISM hardware to\n        achieve Y2K compliance. AD personnel will use manual methods to perform PRISM functions in\n        the event offail ure of the PRISM system.\n\n        8. Building Infrastructure\n\n        The Director, Office of Facilities Management (FM) was contacted to obtain the status of this system.\n        Personnel have developed a matrix checklist indicating roles and responsibilities for Y2K\n        compliance, and have obtained manufacturer certifications of Y2K compliance for all building\n        infrastructure components. FM personnel continue to work with General Service Administration and\n        Boston Properties, the building manager, to ensure the availability and safety of the building. FM\n        personnel have begun to develop a contingency plan for the building infrastructure, including\n        building security, and have identified additional resources that will be needed to implement the\n        contingency plan from December 31, 1999 - January 9, 2000.\n\nVI. CONCLUSIONS\n\n                                        I. The Commission should continually update the inventory of\n "A spot check revealed that some       systems and components susceptible to the Y2K problem. OIS and\n items which should be identified       other personnel responsible for Y2K compliance need a certain\n and tracked for Y2K compliance         amount oflead time to complete renovation work. In the event items\n were not included in the current       are identified late, there may be insufficient time to complete\n inventory listing. "                   renovation and contingency planning.\n\n                                      2. The Commission should continue to update the Commission\nAction Plan as necessary. The current Action Plan should be used by Y2K Committee to measure actual\nprogress versus planned progress on tasks in order to drive action parties to closure and more accurately\npredict when major Y2K-related efforts will be completed.\n\n3. The Commission should continue to develop conti ngency plans for first tier and second tier functions. The\nY2K Committee should ensure that mission critical systems continuity plans are properly incorporated in first\ntier and second tier contingency plans.\n\n                                                     6\n\x0c                                                                                  Inspection Report IG-05-99\n                                                                                             Appendix A\n\n\n\n                                    U.S. International Trade Commission\n\n\n                     Year-2000 Action Plan\n                                                  July 2,1999\n\n\n\nStrategy\n\nVirtually all of the Commission\'s systems are commercial, off-the-shelf systems. Thus, our\nsituation is unlike that of agencies with custom-built computer systems and their own\nprogrammers. The Commission must rely on the vendors of our commercial systems for fixes and\nassurances ofY2K-compatibility; whether the vendors truly can guarantee compatibility is largely\nbeyond the Commission\'s control. I The Commission\'s remediation effort focuses on applying the\n"patches" or upgrades recommended and provided by vendors. The Commission is well along in\napplying vendor-recommended upgrades and patches. All PCs and almost all network hardware\nare already upgraded. The Commission has developed an inventory of all vulnerable systems, that\nhas been cross-checked for completeness by a survey 0 f all offices. Commission staff are working\ntheir way down this list in rough priority order.\n\nOur assessment of the risk is that the Commission will likely experience some disruption during\nthe first few weeks of January 2000. If publ ic services outside the Commission\'s control (c.g.,\npower, telephone systems) do not fail, the expectation is that most internal systems can be\nworking within a week, with the likelihood that a few systems will have to be replaced or require\nextensive work lasting up to a month. The Commission is developing and will use business\ncontinuity (contingency) plans, which will involve manual or other work-arounds, to deliver, or if\nappropriate delay, critical work products until problems can be fixed.\n\nThe Commission has considered whether taking additional steps would guarantee Y2K\ncompliance. The Commission could hire contractors to perform extensive system testing.\nHowever, that course of action would likely be extremely disruptive to current operations, very\nexpensive, and in the end would not guarantee compliance." Currently, additional funding for\nY2K remediation is not anticipated.\n\n\n\n\n     "One aspect of this is that vendors of some key software products have only very recently issued Y2K-\ncompliant versions. This is one reason that remediation efforts are expected to run right up to the last minute.\n    1 For example, to fully test a complex system might typically require full-scale simulation of the Y2K date\n\nchangeover. Should there be a problem that crashes the system, current work would be interrupted, unless\nsubstantial, additional funds were provided to operate a fully redundant operational system during the test or\nperform all testing outside work hours.\n\x0c                                                                     Inspection Report IG-05-99\n                                                                              Appendix A\n\n\n\nOrganization of this plan\n\nThis plan is organized generally along the lines of the General Accounting Office\'s guidelines for\nY2K planning, Year 20{)O Computing Crisis: An Assessment Guide (GAOl AIMD-10.1.14 )(GAO\nAssessment Guide) , which defines 5 phases of remediation:\n\n       Awareness\n\n       Assessment\n\n       Renovation\n\n       Val idation, and\n\n       Implementation.\n\nBased on the already-approved High-level Business-Continuity and Contingency Plan (BCCP), this\nplan also begins to specifically formulate a management-level BCCP. This planning is necessary\nbecause many processes depend on internal or external Y2K-vulnerable system that may fail in\nJanuary, 2000, in spite of our best remediation efforts, The GAO-recommended format for this\nplanning has been followed.\n\nFinally, this plan specifically incorporates a master schedule of Y2K-related events and an\ninventory of Y2K-vulnerablc systems has been incorporated by reference.\n\n\n\nAssignment of responsibilities\n\nBy memorandum C071-W-006 of January 27, 1999, the Chairman assigned the Director of\nOperations (Director) as the Commission\'s Y2K Official with overall responsibility for Y2K\nplanning and remediation. The Director is assisted by a Y2K Committee that includes\nrepresentatives of organizations with major Y2K responsibilities-particularly the Office of\nOperations\' Office of Information Services and the Office of Administration-as well as of the\nGeneral Counsel, the Inspector General and the Office of External Relations.\n\nThe Director is responsible for biweekly Y2K status reporting to the Chairman, as well as\nquarterly follow-up reporting for the IG\'s Y2K audit recommendations, and periodic reporting to\nthe Office of Management and Budget.\n\nThe Director is also responsible for obtaining budgetary and resource support for Y2K\nremediation as necessary, and for leading the education and awareness effort among Commission\nemployees.\n\n\n\n                                                 2\n\x0c                                                                               Inspection Report IG-05-99\n                                                                                       Appendix A\n\n\n\nThe Director assigned a working group to conduct a program-office survey to assess Y2K\nvulnerabilities and business priorities (sec below), and has established a biweekly meeting schedule\n(alternate Tuesdays) for the Y2K Committee.\n\nThe Office of Information Services (OIS) is generally responsible for developing systems\ninventories and for remediation work for Commission information systems (excluding Publishing);\nthe Office of Administration is responsible for those functions with respect to building services,\nout-sourced personnel, payroll and accounting systems, and Publishing information systems.\n\nThe Director of External Relations is responsible for organizing contacts, facilitating cooperative\nagreements, and communications with outside customers, Congressional oversight and funding\ncommittees, business partners, and the public concerning all aspects of Y2K planning and impact.\n\nOffice Directors arc responsible for making information and resources required for assessment\nand remediation efforts available to the Director and the Y2K Committee. Office Directors are\nalso responsible for making sure their staffs arc aware ofY2K issues that may affect them, and\nthat they follow any Y2K-related guidance issued by the Director.\n\nBusiness-process managers J are responsible for assessing the criticality of each of their\noperations\' deliverables to customers, and, where necessary, for forming BCep teams to\ndevelop and test plans for continuation of operations, in the event that one or more systems\nfail (contingency planning).\n\n\nY2K remediation planning\n\nThe following topics track the steps recommended in the GAO Assessment Guide. The adviee\nprovided in the GAO Assessment Guide was tailored to the Commission\'s needs because the\nguide contains a comprehensive list of tasks which arc intended to cover the full range of diverse\nFederal agency systems. Specifically, the guidance was tailored to the Commission\'s\nenvironment of: small scale of operations; no large-scale "customized" systems; and relatively\nsmall impact on the public of short-term (one month or less) interruption of one or more of our\noperations.\n\n\n\n\n      I Business process managers are the lead officials for the Commission\'s five Strategic Plan operations, plus the\n\ncritical processes identified as \'Tier I" priorities in the section below on contingency planning.\n\n                                                          3\n\x0c                                                                  Inspection Report IG-05-99\n                                                                          Appendix A\n\n\n\nY2K problem awareness\n\nThe awareness program within the Commission comprises the following elements:\n\n\n       Define the Year-2UOO problem and its potential impact on the Commission. This step is\n       complete in theform ofthe Inspector General\'s Report Evaluation ofthe Commission\'s\n       Preparationsfor the Year 2UUU Report No. IG-3-99(IG Y2K Report 03-1)/)) and\n       associated program management responses.\n\n       Designation ofthe Y2K Official andformation ofa Y2K Committee representing key\n       technical and management executives throughout the Commission. This step is complete.\n\n       Meet with all Commission managers to brief them on the nature ofthe problem, outline\n       Commission plans [or remediation, review their critical mission requirements. risks and\n       priorities. and discuss alternativesfor coping with the problem. The all-managers\n       meeting took place in March. 1999; the office-by-office impact survey was conducted\n       during March and April. 1999.\n\n       Brief this plan to the IRM Steering Committee and the Budget Committee. Modify plan in\n       light of comments received. This process will be completed by July 9, 1999.\n\n       Advise Commission managers and staff of likely impact of Y2K remediation decisions on\n       their operations. This information will be based on evaluation of the business-impact\n       material gathered in the manager survey, combined with technical assessment of the costs\n       and prospects for replacement or renovation of relevant Y2K-vulnerable systems,\n       alternatives for alternative processing or work-arounds like rescheduling, and\n       Commission-wide priority ranking of remediation projects. The responsibility for this\n       process is with the BCCP Communications Team (to be formed), and the target for\n       completion of this process is September, 1999.\n\n       Advise outside customers, suppl iers and other business partners of the impact on service\n       delivery or other change in Commission business practice, schedules, etc. contemplated as\n       a result of Y2K remediation. The responsibility for this process is with the BCCP\n       Communications Team, and the target for completion of this process is tentatively\n       October, 1999.\n\n       Communicate to all Commission staff the plans and guidance for changes in procedures\n       that are planned as part of Y2K remediation, and communicate to managers contingency\n       plans for business continuation in the event of unanticipated or uncontrollable (external)\n       failures of Y2K-vulnerable systems. This process will be the responsibility of BCCP\n       Teams and will occur from November, 1999 through February, 2000, as required.\n\n\n\n                                                4\n\x0c                                                                               Inspection Report IG-05-99\n                                                                                       Appendix A\n\n\n\nAssessment of vulnerable systems and business risks\n\nCommission IT and administrative services staff have been working for some time to renovate or\nreplace Y2K-vulnerable systems that are obviously critical to Commission operation, like desktop\nPCs, lTC-Net servers and networking devices, and the telephone system. Progress on these\nsystems is reflected in the systems inventory attached to this plan, in the IG Y2K Report 03-99,\nand in Commission reports to Federal oversight agencies. As of June, 1999, remediation on well\nover 90 percent of systems has been completed.\n\nTo assure that other systems that are important to the Commission\'s mission are identified and\ntargeted for priority remediation, a survey of all offices was conducted in April, 1999, and a fcw\nsystems were added that the wcre initially missed in earlier inventories.\n\nThe complete inventory of systems has been reviewed and a Y2K status assigned to each item.\nThe status is either "Compliant" (remcdiated) or "Noncompliant." For each noncompliant item, a\nrenovation date has been assigned, or it has been classi fied as "To be abandoned" or "Low\npriority" (meaning it may be abandoned without serious consequence ifit fails in 2000.)\n\nThe total number of noncompliant items as of June 18, 1999, was 45, with 21 of those scheduled\nfor remediation (i.e., not to be abandoned or "low priority). Only 5 items are scheduled to be\nrenovated after July 31, 1999, and of those, only I-the Treasury Electronic Certification System\noperated by Finance & Budget,-is a critical system.\n\n\nRenovation of vulnerable systems\n\n"Renovation" means fixing, replacement or retirement of systems. The Commission has been\nrenovating systems for over a year, based on common-sense priorities and the systems previously\nidentified as "mission-critical" for purposes of security planning. 4 Basic infrastructure and widely\nused applications were identified as priorities, so the Commission has been working with vendors\nto fix, upgrade or replace the obvious systems prior to doing a complete analysis of priorities.\nFor example, network file and print servers were upgraded to Y2K-compliant versions of Banyan\nVINES, an upgrade to a Y2K compliant version of our main desktop application (WordPcrfect)\nwas completed, and all individual PC\'s were made compliant.\n\n\n\n    4 EDIS and the "ITCNet" were previously identified as critical systems for security planning purposes.\n\n"ITCNet" comprises the basic computer infrastructure of network connections, servers, printers, and individual\nPC\'s, as well as the lntcrnct connection including the firewall. It docs not, however, include any of the\napplications supported by this infrastructure, like word processing, databases, spreadsheets, e-mail, Internet access,\nT&A processing, ctc., many of which clearly arc crucial to Commission operations. The Commission has been\nreporting to OMS and GSA on this definition of "mission critical systems", though this was modified in the latest\n(February, 1999) report to include the Tariff & Trade DataWeb and the 001 T&A system, in light of the IG\'s\nrecent audit recommendations. However, a broader definition of "mission-critical systems" is needed, based on\ninput from Commission business managers on what systems support their "critical" dclivcrablcs,\n\n                                                          5\n\x0c                                                                 Inspection Report IG-05-99\n                                                                         Appendix A\n\n\n\nEven for the obviously important systems, however, a significant impediment to renovation has\nbeen and continues to be the slowness of delivery by our vendors and suppliers of fixed product\nversions or software "patches." For example, a stable version of Microsoft Windows NT Server\nsoftware, on which several other systems depend, including our Internet firewall, our Lotus Notes\napplications (including the Sunset information page and the Intranet), and our main Internet Web\npage (http://www.usitc.gov.) is still unavailable. The expectation is that required upgrades will be\nforthcoming soon, but all delays may add to the "year-end rush."\n\nPrincipal outside services vendors have been contacted, like PEPCO (electrical power), Bell\nAtlantic (telephone and local-service access to the Internet), and the Department of the Interior\n(personnel, payroll and accounting sysrcms.) They have responded with varying degrees of\nassurance that they will be able to provide continuous service. Where there is less than a full\ncommitment to continued service, it is difficult to estimate how much is real uncertainty and how\nmuch is legal hedging. Obviously, planning has incorporated scenarios in which some or all of\nthese services arc interrupted.\n\nTo provide marc specific and timely guidance on renovation, the Commission\'s master schedule\nshowing target completion dates for each system is maintained on the Intranet. Here Commission\nemployees can monitor progress on items they depend on.\n\n\n\nValidation (testing)\n\nBoth Government and private-sector sources indicate that thorough testing of systems to assure\nY2K compliance is costly, complex and time-consuming. The Gartner Group, a leading IT\nconsultancy, estimates that seventy percent of all Y2K compliance expense can be consumed in\ntesting. The GAO suggests that some agencies may need "over a year to adequately validate and\ntest converted or replaced mission-critical systems." They also suggest that "in some instances,\nagencies may not be able to shut down their production systems for testing, and may thus have to\noperate parallel [duplicate] systems ..." 5\n\nThere arc no current plans to conduct extensive testing, as this would likely be extremely\ndisruptive to current operations, very expensive, and in the end would not guarantee compliance.\nIn addition, where other agencies may need more extensive testing in part because their systems\nare unique and highly customized, with programming code developed by the agency itself, or with\ncontractor support, the Commission does not have this same need. Such systems will typically\ntake a long time to fix, so the risk is greater that an outage in January, 2000, would be an\nextended one. Furthermore, if an agency is the only user of a system, it bears the full burden of\nloeating and repairing the problem. In contrast, virtually all of the Commission\'s systems are "off-\nthe-shelf\', mainstream eommercial products. The vendors arc doing the testing, and if the\nsystems do fail next January, contacts with their many customers will let them quiekly find all\n\n\n    5   GAO/AIMD-IO.1.14, p. 16.\n\n                                                 6\n\x0c                                                                   Inspection Report IG-05-99\n                                                                            Appendix A\n\n\n\nvariations of any problems, and fix them. For users of commercial products, therefore, the need\nfor testing is less.\n\nNotwithstanding the above, some basic "roll-forward" testing was conducted of our PC\nconfigurations. Once BCCP Teams have focused on the systems that they are relying on for\ncontingency operations to deliver Ticr-l and Tier-2 products and services, additional testing may\nbe performed.\n\n\nImplementation\n\nThe GAO Assessment Guide lists implementation as a step separate from renovation and testing\n(validation) because of the assumption that Y2K-compliant systems will be developed and tested\n"off-line" (in isolation from the regular production environment.) Implementation is the step of\nintegrating the renovated, tested systems back into the rest of the operational network. At the\nCommission Y2K-updated systems have been continuously implemented as part of the\nrenovation process. The upgraded network servers arc in production, as arc renovated desktop\nPCs. Data Web components have been updated in pieces as software "patches" have become\navai lable. Thus, there is no need for any separate implementation phase in the Commission\'s\nremediation plan.\n\n\n\nBusiness continuity and contingency planning\n\nBusiness-continuity or contingency planning (hereinafter "contingency planning") is planning for\ndelivering critical Commission outputs to customers if information systems fail in spite oj\'\nremediation efforts, or if external business partner systems on which critical Commission outputs\ndepend fail, or if public infrastructure systems-power, transportation and the like-fail. The aim\nof contingency planning is to "safeguard an agency\'s ability to produce a minimum acceptable\nlevel of outputs and services in the event of failures of internal or external mission-critical\ninformation systems and services." I> (Emphasis in the original.)\n\nThe General Accounting Office has provided a model for contingency planning in its Year 2000\nComputing Crisis: Business Continuity and Contingency Planning (GAO/AIMD-IO.I.19.) As\nwith their remediation guidance, this model "provides a conceptual framework for helping large\nagencies to manage the risk of potential Year 2000-induced failures ... "(Emphasis added.) This\nguidance will thus be considerably adjusted to fit the Commission\'s environment. The first\nadjustment is that this plan combines both remediation and contingency planning in a single\ndocument, and the Y2K Committee will manage both processes.\n\n\n\n\n    (, GAO/AIMD-IO.1.19,   at   p.1.\n\n                                                7\n\x0c                                                                          Inspection Report IG-05-99\n                                                                                    Appendix A\n\n\n\nIt is important to emphasize that, even more than for remediation planning, contingency planning\ncan only be done by managers and domain experts familiar with the critical business processes,\nand not by technical and support staff. This means, for example, that contingency planning for\nTitle VII investigations must be led by the Director of Investigations, with significant insights\nfrom other offices that are directly involved and the staff most experienced with these\nproceedings.\n\nGAO defines four phases of contingency planning:\n\n          Initiation.-Includes establishing a work group, developing a high-level plan and master\n          schedule, identifying critical business outputs, and obtaining executive support;\n          Business impact anaIysis.-Defining various Year-2000 failure scenarios, identify detailed\n          dependencies on internal external systems for each critical output process, and define\n          minimum acceptable levels of output for each critical process;\n          Contingency planning.-Includes making and documenting a separate plan for each\n          critical output, defining event "triggers" that will activate the plan, and establishing a\n          business resumption team and roles for each process; and\n          Testing.-Includes developing and documenting test plans, preparing and executing tests\n          against major disaster scenarios, and updating plans to correct problems uncovered.\n\nThis Plan covers only the Initiation phase of our contingency planning, since the other phases will\nbe conducted by project teams responsible for producing the identified critical business outputs.\nThe plans developed by the project teams will be added to this document (as separate\nattachments) at the end of each phase (identified in the master schedule, below).\n\n\n\nInitiation\n\nFor the Commission\'s environment, the key "dcliverablcs" of this phase of contingency planning\nare (I) identifying critical Commission outputs, and (2) for each such output, assigning a team to\nbe responsible for contingency planning for the related process.\n\nThe Y2K Committee has conducted its analysis of critical outputs, and forwarded a\nrecommendation to the Chairman on May 24, 1999 in OP- W-022 (available for viewing on the\nIntranet). The Chairman approved the recommendation on May 25.\n\nThis High-Level BCCP identified some functions that must operate during any potential\ndisruption or the Commission may face serious adverse consequences. Those functions, called\n"first tier functions," are: (I) building security, (2) remediation of Y2K problems, (3) basic\ncommunications, and (4) payroll.\' Building security would include the protection of the physical\nplant, the Commission\'s personnel, and the Commission\'s information resources. The basic\n\n\n    7   The numbers do not indicate priority among the four items, as each is viewed as of primary importance.\n\n                                                          8\n\x0c                                                                    Inspection Report IG-05-99\n                                                                            Appendix A\n\n\n\ncommunication plan would primarily involve informing employees about whether they should\ncome to work and about other matters of concern, but it would also involve assisting customers\n(especially those with urgent needs, such as a Senator asking for data or a judge for pleadings,\nunder a tight deadline) and informing them about the status of the Commission\'s proceedings.\n\nThe "second tier" of functions includes the investigation and research activities that fulfill the\nCommission\'s mission. Second tier planning will address Commission operations as they are set\nout in the Strategic Plan: import injury investigations, intellectual property-based import\ninvestigations, research program, trade information services, and trade policy support. Those\nfunctions are crucial to the Commission\'s long-term operations, but during January 2000\npotentially could be postponed in the event of a massive disruption such as that resulting from a\nloss of building power or water for an extended period. Proceedings subject to statutory\ndeadlines that thc statute does not explicitly allow to be extended are distinguishable in terms of\nurgency from those that are not so subject, as the entities (courts, Congressional committees, etc.)\nthat impose deadlines in the latter proceedings may be approached for extensions of time.\nHowever, for the purposes of contingency planning, both types of proceedings are viewed as\nappropriate for inclusion in tier two. The plan does not specify a third tier; any activities other\nthan those in the first and second tiers will not require any formal contingency plan within the\nbasic parameters.\n\nOnce functions have been prioritized as described above, the next step is conducting contingency\nplanning. With respect to the functions in the first tier, planning will essentially consist of finding\na way to perform them even if disruption precluded use of the Commission building.\n\nContingency planning for the second tier functions is likely to be more elaborate. Because the\npossible disruption could take several forms (e.g., the Commission could have power but no\ntelephones, or personal computers (PCs) but no network), contingency planning will take into\naccount a variety of scenarios based on different Ievcls of disruption, and lead to plans that\naddress the steps to take if faced with each scenario. The scenarios include: (1) the Commission\nhas no power and/or water, thus precluding use of the building; (2) the Commission has power,\nwater, and PCs, but no network, communications (telephones, facsimile, E-mail), or duplication\ncapability (copiers, Docutech); and (3) the Commission has power, PCs, copiers, and the network\n(including internal E-mail), but no external communications (telephones, Internet, facsimile,\nexternal E-mail).\n\nBCCP team leaders for the identified "Tier I" (most critical) and "Tier 2" (critical) functions have\nbeen identified and were tasked on June 28 with conducting the remaining phases of contingency\nplanning. As shown in the master schedule, the Y2K committee will review documents developed\nby the BCCP team leaders at the end of each phase. At the end of the final phase the Y2K\ncommittee will approve the BCCP final plans. These documents will then be added to the Action\nPlan as an attachment. Deadlines associated with the contingency planning process are\nhighlighted in the master schedule. The team leaders associated with each function are listed\nbelow.\n\n\n                                                   9\n\x0c                                                                     Inspection Report IG-05-99\n                                                                             Appendix A\n\n\n\n\nFunction (Tier)                                          BCep team leader\n\nBuilding security (I)                                    Director of Administration\n\nRemediation of Y2K problems (I)                          Director, Office of lnformation Services\n\nBasic communications ( I)                                Director, Office of External Relations\n\nPayroll (I)                                              Director of Administration\n\nImport injury investigations (2)                         Director, Office of Investigations\n\nIntellectual property-based investigations (2)           Director, Office of Unfair Import Investigations\n\n Research program (2)                                    Director, Office of Industries\n\nTrade information services (2)                           Director, Office of Tariff Affairs and Trade\n                                                         Agreements\n\nTrade policy support (2)                                 Director, Office of External Relations\n\n\n\n\nMaster schedule ofY2K-related events\n\n\n Date I           Event                                      Responsibility                   Status\n 1/27/1999        Chairman assigns Director of               Chairman                         Completed\n                  Operations overall responsibility\n                  for Y2K planning and\n                  remediation (C071-W-006)\n\n 2/23/1999        First biweekly status report to the        Rogowsky                         Completed\n                  Commission (OP-W-OIO)\n\n 2/25/1999        OMB Quarterly Status Report                Rogowsky                         Completed\n\n 3/1/1999         Y2K Project Team ("Y2K                     Rogowsky                         Completed\n                  Committee") formed (first\n                  meeting held)\n\n 3/3/1999         Biweekly status report to the              Smith (for Rogowsky)             Completed\n                  Commission (0 P-W-016,\n                  3/5/1999)\n\n 3/10/1999        "Y2K Awareness" meeting of all             Spencer/Olsavsky (for            Completed\n                  Commission managers as a                   Rogowsky)\n                  group\n\n\n                                                        10\n\x0c                                                            Inspection Report IG-05-99\n                                                                    Appendix A\n\n\n\n\nDate I      Event                                   Responsibility             Status\n3/16/1999   Biweekly status report to the           Rogowsky                   Completed\n            Commission (OP-W-OI4)\n\n4/2/1999    Biweekly status report to the           Rogowsky                   Completed\n            Commission (OP-W-OI7a)\n\n4/9/1999    Compilation of survey of all            Spencer/Richards           Completed\n            Commission managers to identify\n            critical business processes and\n            their dependencies on Y2K-\n            vulnerable systems\n\n4/16/1999   Biweekly status report to the           Rogowsky                   Completed\n            Commission (OP-W-OI7b)\n\n5/3/1999    Biweekly status report to the           Rogowsky                   Completed\n            Commission (OP-W-OI8)\n\n5/11/1999   Identify core business processes        Y2K Committee              Completed\n            (BCCP 1.3)                                                         (Y2K\n                                                                               meeting)\n\n5/17/1999   OM B Quarterly Status Report            Rogowsky                   Completed\n\n5/17/1999   Biweekly status report to the           Rogowsky                   Completed\n            Commission (OP-W-021)\n\n5/24/1999   Y2K Committee proposal for              Rogowsky, Y2K Committee    Completed\n            remediation and contingency                                        (OP-W-022)\n            planning strategy to Chairman,\n            indicating business risks\n            associated with recommended\n            approach.\n\n5/25/1999   Agency Head accepts risks               Chairman                   Completed\n            associated with proposed Y2K            (Rogowsky/Bardos)\n            Committee remediation plans\n\n6/1/1999    Complete inventory of Y2K               Director, Information      Completed\n            vulnerable systems with                 Services\n            remediation status and dates\n\n6/211999    Inventory and Commission                Director, Information      Completed\n            strategy posted on USITC                Services\n            Intranet and staff requested to\n            review and comment\n\n\n\n\n                                               II\n\x0c                                                                 Inspection Report IG-05-99\n                                                                         Appendix A\n\n\n\n\nDate I        Event                                   Responsibility              Status\n6/1/1999      Biweekly status report to the           Rogowsky                    Completed\n              Commission\n\n6/15/1999     BCCP "high-level plan" due to           Rogowsky                    Completed\n              OMB per OMB 99-16\n\n6/15/1999     Biweekly status report to the           Rogowsky                    Completed\n              Commission\n\n6/28/1999     Contingency planning meeting to         Rogowsky                    Completed\n              assign team leaders of core\n              business processes and task them\n              with BCCP. (BCCP 1.4)\n\n6/28/1999 -   Conduct and document BCCP               BCCP Team Leaders\n7/23/1999     Business Impact Analysis (BCCI~\n              VI)\n\n6/30/1999     Status report on IG-03-99               Rogowsky                    Completed\n\n6/30/1999     Biweekly status report to the           Rogowsky                    Completed\n              Commission\n\n7/1/1999      Status report on remediation            Olsavsky\n              progress (systems not yet\n              remediated)\n\n7/2/1999      Action plan approved by Y2K             Rogowsky\n              Committee\n\n7/9/1999      Overall Y2K Plan briefed to             Rogowsky (Smith)\n              IRM/SC and Budget Committee,\n              and published to the Intranet\n\n7/15/1999     Biweekly status report to the           Rogowsky\n              Commission\n\n7/30/1999     Review and provide feedback to          Y2K Committee\n              Team Leaders on Business\n              Impact Analyses\n\n8/4/1999      Biweekly status report to the           Rogowsky\n              Commission\n\n8/211999      Status report on remediation            Olsavsky\n              progress (systems not yet\n              remediated)\n\n\n\n\n                                                 12\n\x0c                                                               Inspection Report IG-05-99\n                                                                      Appendix A\n\n\n\n\nDate\'         Event                                 Responsibility                 Status\n812/1999 -    Conduct and document                  BCCP Team Leaders\n8127/1999     Contingency Planning (BCCP\n              3.0)\n\n8/15/1999     OM B Quarterly Status Report          Rogowsky\n\n8/18/1999     Biweekly status report to the         Rogowsky\n              Commission\n\n9/1/1999      Biweekly status report to the         Rogowsky\n              Commission\n\n9/1/1999      Completion of all remediation         Olsavsky\n              activities\n\n9/3/1999      Review and provide feedback to        Y2K Committee\n              Team Leaders on Contingency\n              Plans\n\n9/6/1999 -    Conduct and document BCCP             BCC P Team Leaders\n10/111999     Testing (BCCP 4.0)\n\n9/15/1999     Biweekly status report to the         Rogowsky\n              Commission\n\n10/1/1999     Biweekly status report to the         Rogowsky\n              Commission\n\n10/111999     IG-03-99 Closure Memorandum           Rogowsky\n\n1012/1999     Y2K Committee approves BCCP           Rogowsky\n              final plans\n\n10/15/1999    Biweekly status report to the         Rogowsky\n              Commission\n\n11/111999 -   BCCP leader for "Basic                Leahy\n11/30/1999    Communications" communicates\n              with customers, business\n              partners, and staff regarding\n              Y2K impact forecast\n\n11/1/1999     Biweekly status report to the         Rogowsky\n              Commission\n\n11/15/99      OMB Quarterly Status Report           Rogowsky\n\n11/15/1999    Biweekly status report to the         Rogowsky\n              Commission\n\n\n                                               13\n\x0c                                                                    Inspection Report IG-05-99\n                                                                              Appendix A\n\n\n\n\nDate I          Event                                   Responsibility                  Status\n 12/1/1999      Biweekly status report to the           Rogowsky\n                Commission\n\n 12/15/1999     Biweekly status report to the           Rogowsky\n                Commission\n\n 1/4/2000       Biweekly status report to the           Rogowsky\n                Commission\n\n 1/19/2000      Final] Biweekly status report to the    Rogowsky\n                Chairman\n\n IDeadline for deliverables.\n2 Ifwarranted, the work of the Y2K committee and the biweekly status reports will continue beyond this\n\ndate.\n\n\n\nInventory of Y2K-vulnerable systems posted on the USITC Intranet\n\n\n\n\n                                                   14\n\x0c'